Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/31a7d4-49a4-4d6f-8c8d-d8152b5157d8/1/POfbYVSqheHHHeZGxYpRq7KbX1M.roa
File: POfbYVSqheHHHeZGxYpRq7KbX1M.roa (raw, json)
Hash identifier: KyoKkl6DIX9Xy4u/WG3fWB4Qwmh28GP+/5WZcWWrFHw=
Subject key identifier: 3C:E7:DB:61:54:AA:85:E1:C7:1D:E6:46:C5:8A:51:AB:B2:9B:5F:53
Certificate issuer: /CN=d921145820feceef3cf55270326c5e1243f24355
Certificate serial: 018CC50006DD511932C00D8E8C3F6BED0FF7
Authority key identifier: D9:21:14:58:20:FE:CE:EF:3C:F5:52:70:32:6C:5E:12:43:F2:43:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2SEUWCD-zu889VJwMmxeEkPyQ1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/31a7d4-49a4-4d6f-8c8d-d8152b5157d8/1/POfbYVSqheHHHeZGxYpRq7KbX1M.roa
Signing time: Mon 01 Jan 2024 12:29:22 +0000
ROA not before: Mon 01 Jan 2024 12:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59829
IP address blocks: 212.6.50.0/24 maxlen: 24
2a0c:2f40::/29 maxlen: 29
2a0c:2f43::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 26 Feb 2024 11:58:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:06:dd:51:19:32:c0:0d:8e:8c:3f:6b:ed:0f:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d921145820feceef3cf55270326c5e1243f24355
Validity
Not Before: Jan 1 12:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ce7db6154aa85e1c71de646c58a51abb29b5f53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:eb:51:ce:b7:36:13:96:fc:da:ae:50:af:94:
99:74:de:11:17:8e:58:28:e7:35:32:7b:e5:30:71:
9d:e8:e8:6a:b0:71:b6:81:5b:d7:99:d9:f3:27:49:
6a:cb:48:7c:7a:e5:23:24:fc:01:61:26:09:fe:14:
e2:cc:41:f8:65:1c:18:00:5b:ba:6f:86:f0:79:94:
70:13:fb:69:8c:8e:af:13:16:22:0d:9d:74:54:0a:
99:7d:e9:b5:b1:c4:1e:89:0d:7e:a3:3a:82:cc:ea:
76:4c:91:ff:ff:dd:2b:29:57:97:e8:05:cc:34:93:
ef:2e:ff:cc:b5:d2:d2:92:aa:f5:e6:4c:56:3e:6c:
54:a4:db:0f:0e:8a:b9:cf:f7:88:13:3f:73:fa:91:
13:37:ac:d4:3e:4d:6f:f4:b6:bd:73:f0:3b:85:f6:
21:1e:d5:3e:d2:5f:78:51:ed:87:ad:16:f3:09:cf:
b2:5a:07:89:06:64:75:3b:31:7f:2e:b8:fa:38:41:
59:89:5a:84:3c:df:a9:b1:4a:1a:a5:3f:90:4c:d9:
5b:4c:cd:48:04:19:64:67:75:96:a0:b9:67:14:32:
9d:a8:68:23:20:01:d1:dc:5b:5f:86:4c:f8:2c:37:
f5:10:c8:63:c0:15:be:10:3b:96:cd:e9:2c:14:98:
ba:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:E7:DB:61:54:AA:85:E1:C7:1D:E6:46:C5:8A:51:AB:B2:9B:5F:53
X509v3 Authority Key Identifier:
keyid:D9:21:14:58:20:FE:CE:EF:3C:F5:52:70:32:6C:5E:12:43:F2:43:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2SEUWCD-zu889VJwMmxeEkPyQ1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/31a7d4-49a4-4d6f-8c8d-d8152b5157d8/1/POfbYVSqheHHHeZGxYpRq7KbX1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/31a7d4-49a4-4d6f-8c8d-d8152b5157d8/1/2SEUWCD-zu889VJwMmxeEkPyQ1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.6.50.0/24
IPv6:
2a0c:2f40::/29
Signature Algorithm: sha256WithRSAEncryption
90:cd:bf:79:38:4b:b9:54:6b:59:29:81:95:21:5d:4c:d2:46:
18:8d:0f:e5:cb:c0:2e:57:c5:dc:00:cf:5f:9c:b9:03:3b:6d:
38:a7:54:55:5b:1c:ad:f1:be:7d:c2:31:e3:60:12:58:ec:9a:
33:31:94:64:92:83:06:45:88:b8:99:07:86:7d:ee:2a:01:6f:
0a:1b:06:7c:24:2a:26:4c:24:bd:2d:d1:87:ec:f5:d4:03:43:
04:05:30:1b:eb:70:82:ea:af:ff:4f:4e:18:47:34:a1:c7:52:
44:6d:e3:e5:30:7c:f0:d5:70:d6:b4:79:84:a1:8e:79:25:df:
81:56:8c:96:1b:28:5a:d3:dc:ea:86:a6:3a:ea:0e:3a:9c:49:
76:4c:b1:80:91:4d:d6:c7:1c:04:e6:e7:d8:9a:47:1f:96:fe:
94:74:52:f3:8e:aa:e8:4b:3b:d5:63:3c:01:ce:4e:db:be:ab:
b5:e6:89:55:81:bf:a3:a8:c9:fe:2e:af:87:29:1d:c5:a9:35:
20:c0:00:a1:0a:b7:44:d0:be:89:50:0d:9a:d1:f1:ec:ea:01:
a8:9f:81:50:1a:44:c1:c7:1a:bb:2f:13:ef:33:af:a3:6d:49:
f2:b3:63:75:6c:cc:7c:14:7c:b6:f3:14:68:0e:70:4e:82:00:
a4:f7:39:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:05 2024 by rpki-client on console-ams.rpki-client.org